Skip to content

compliance-mapping.json missing from /comply:pack-assessment skill #132

Description

@hbraswelrh

Describe the bug
The /comply:pack-assessment skill does not have the compliance-mapping.json as part of the tasks for completion. This is required for the complypack bundle since it packages the .rego files that need to be mapped to the Gemara policy bundle assessment plan requirement-ids.

To Reproduce
Steps to reproduce the behavior:

  1. complyctl generate --policy-id # should not work unless the compliance-mapping.json is there

Expected behavior
The comply:pack-assessment skill should create the compliance-mapping.json and include it in the complypack bundle when publishing to ghcr.

Screenshots

 Resolved path/to/my/repo version: latest
     Reusing generated artifacts for testing-artifact-policy-bundle (unchanged since last generate)
     Scanning 38 requirements via opa for target(s): kubernetes, ci...
     Scanning targets...
     done

     WARNING: 2 operational errors during scan:
       - kubernetes: scan config missing or has no requirement IDs; run Generate first with a bundle containing
     complytime-mapping.json
       - ci: scan config missing or has no requirement IDs; run Generate first with a bundle containing
     complytime-mapping.json

Additional context
The compliance-mapping.json is specifically for OPA. OpenSCAP uses the tailoring-file.xml and ampel will use the bundle.json

Metadata

Metadata

Assignees

Labels

bugSomething isn't workinguatSupporting User Acceptance Testing

Type

Fields

Priority

Urgent

Effort

Medium

Projects

Status
In progress 📋

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions